Sign in Create account

#dependencyconfusion — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #dependencyconfusion, aggregated by home.social.

IT News @[email protected] · 2021-03-06 · 15:25 UTC

More top-tier companies targeted by new type of potentially serious attack - Enlarge (credit: Getty Images)
A new type of supply chain attack unveiled last month is targeting... - https://arstechnica.com/?p=1747637 #dependencyconfusion #networkcompromise #supplychain #malware #biz&it #tech

#tech #biz #malware #supplychain #networkcompromise #dependencyconfusion
Antonio Hdez. Blas🔵 @nihilipster · 2021-02-12 · 17:30 UTC

"In this post, I demonstrate that critical parts of the #Haskell package management system are vulnerable to the #DependencyConfusion supply chain attack." #security #cabal #hackage
https://frasertweedale.github.io/blog-fp/posts/2021-02-12-haskell-dependency-confusion.html

#haskell #hackage #dependencyconfusion #security #cabal